Publicité
Publicité
Format du document : text/plain
Prévisualisation
Script ZHPFix
G2 - GCE: Preference [User Data\Default] [hphehadppenpmajgnkjdcopcfijjegaf] Jump Flip v.1.0.0 (D�sactiv�) =>PUP.JumpFlip
O4 - GS\Program [CHRISTINE]: Centre d'aide Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://support.google.com =>Hijacker.Browsers
O4 - GS\Program [CHRISTINE]: Cr�er des raccourcis vers des applications - Centre d'aide Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://support.google.com =>Hijacker.Browsers
[MD5.00000000000000000000000000000000] [APT] [{0807C59B-0108-4515-B9DB-BF0BB5DE43B7}] (...) -- C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\uninstbb.exe (.not file.) [0] =>PUP.Babylon
[MD5.00000000000000000000000000000000] [APT] [{B8AC1E9B-ADBF-41C3-847A-EAA0C60450F5}] (...) -- C:\Program Files (x86)\sweetpacks bundle uninstaller\uninstaller.exe (.not file.) [0] =>PUP.SweetIM
[HKCU\Software\USyndication] =>Trojan.USyndication
[HKCU\Software\UpToDown] =>PUP.UpToDown
[HKCU\Software\usyndication.com] =>Trojan.USyndication
O43 - CFD: 08/02/2013 - 20:44:15 - [0] ----D C:\Program Files (x86)\SweetPacks =>PUP.SweetIM
O43 - CFD: 20/01/2014 - 12:01:15 - [0] ----D C:\Users\CHRISTINE\AppData\Roaming\DigitalSites =>Hijacker.DSite
O43 - CFD: 20/01/2014 - 19:34:22 - [0] ----D C:\Users\CHRISTINE\AppData\Local\Software
O69 - SBI: SearchScopes [HKCU] {4C93A6DA-9198-4348-9FA3-90E1789E8DBF} - (Search Here) - http://www.mysearchresults.com =>Adware.MyWebSearch
[HKLM\Software\Google\Chrome\Extensions\hphehadppenpmajgnkjdcopcfijjegaf] =>PUP.JumpFlip^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>PUP.Tarma
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5] =>PUP.Tarma
[HKCU\Software\USyndication] =>Trojan.USyndication
[HKCU\Software\usyndication.com] =>Trojan.USyndication
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC] =>Adware.Boxore^
C:\Users\CHRISTINE\AppData\Local\Google\Chrome\User Data\Default\Extensions\hphehadppenpmajgnkjdcopcfijjegaf =>PUP.JumpFlip^
C:\Program Files (x86)\SweetPacks =>PUP.SweetIM^
C:\Users\CHRISTINE\AppData\Roaming\DigitalSites =>Hijacker.DSite^
C:\Users\CHRISTINE\AppData\Local\Software =>Adware.Boxore
[HKCU\Software\UpToDown] =>PUP.UpToDown^
HKLM\Software\Wow6432Node\Sync Services]
O43 - CFD: 18/10/2012 - 18:10:17 - [0] ----D C:\ProgramData\Documentation
O61 - LFC: 24/01/2014 - 12:18:26 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_ak-ns.sascdn.com_0.localstorage [3072]
O61 - LFC: 24/01/2014 - 12:18:26 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_ak-ns.sascdn.com_0.localstorage-journal [3608]
O61 - LFC: 21/01/2014 - 12:18:22 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Diagnostics\2560293460\2014012112.000\NetworkDiagnostics.0.debugreport.xml [1334]
O61 - LFC: 21/01/2014 - 12:18:22 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Diagnostics\2560293460\2014012112.000\ResultReport.xml [39124]
O61 - LFC: 21/01/2014 - 12:18:22 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Diagnostics\2560293460\2014012112.000\WindowsUpdateDiagnostic.0.debugreport.xml [2557]
O61 - LFC: 21/01/2014 - 12:18:22 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Diagnostics\2560293460\2014012112.000\results.xml [284]
O61 - LFC: 21/01/2014 - 12:18:22 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Diagnostics\2560293460\2014012112.000\results.xsl [49097]
O61 - LFC: 21/01/2014 - 12:18:22 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Diagnostics\2560293460\latest.cab [12660]
O61 - LFC: 21/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\is357113909\3696502_stp.CIS [5583612]
O61 - LFC: 21/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\is357113909\3696502_stp.CIS.part [74]
O61 - LFC: 21/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\is357113909\3696504_stp.CIS [9735]
O61 - LFC: 21/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\is357113909\3696504_stp.CIS.part [20]
O61 - LFC: 21/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\is357113909\3696715_stp.CIS [2002467]
O61 - LFC: 21/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\is357113909\3696715_stp.CIS.part [39]
O61 - LFC: 21/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\is357113909\3696791_stp.CIS [218183]
O61 - LFC: 21/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\is357113909\3696791_stp.CIS.part [22]
O61 - LFC: 21/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\is357113909\3696870_stp.CIS [4930487]
O61 - LFC: 21/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\is357113909\3696870_stp.CIS.part [68]
O61 - LFC: 21/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\is357113909\3696934_stp.CIS [19435632]
O61 - LFC: 21/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\is357113909\3696934_stp.CIS.part [209]
O61 - LFC: 21/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\is357113909\3697184_stp.CIS [501103]
O61 - LFC: 21/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\is357113909\3697184_stp.CIS.part [24]
O61 - LFC: 22/01/2014 - 12:18:29 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\avginfo.id [82]
O61 - LFC: 22/01/2014 - 12:18:30 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\dd_SetupUtility.txt [162]
O61 - LFC: 22/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\Microsoft .NET Framework 4.5.1 Setup_20140122_230753120-MSI_netfx_Full_GDR_x64.msi.txt [12235090]
O61 - LFC: 22/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\Microsoft .NET Framework 4.5.1 Setup_20140122_230753120.html [1153356]
O61 - LFC: 22/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\dd_wcf_CA_smci_20140122_221043_706.txt [4684]
O61 - LFC: 22/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\dd_wcf_CA_smci_20140122_221045_672.txt [2694]
O61 - LFC: 22/01/2014 - 12:18:32 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\RGIE62.tmp-tmp [8910]
O61 - LFC: 23/01/2014 - 12:18:32 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\tmpBB43.url [358]
O61 - LFC: 23/01/2014 - 12:18:32 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\tmpBB44.vbs [218]
[MD5.3DF9C822FFD4245403113A555A27357F] [SPRF][12/01/2014] (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\Quarantine.exe [360073]
[MD5.9C3F4C583CE06463694F4D683E21B35B] [SPRF][20/01/2014] (.Am�n�t�z� Ltd - Installer.) -- C:\Users\CHRISTINE\AppData\Local\Temp\setup__1976.exe [337960]
[MD5.B91FE1536AB4D680DDD77469EA3FD4BF] [SPRF][09/01/2014] (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\vlc-2.1.2-win32.exe [24097311]
SS - | Demand 06/09/2013 288776 | (McComponentHostService) . (.McAfee, Inc..) - C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe
[MD5.00000000000000000000000000000000] [APT] [{A2510CE3-3D91-4516-9B78-1987A88FC0F8}] (...) -- E:\autorun.exe (.not file.) [0]
[HKLM\Software\Wow6432Node\Software]
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll =>Toolbar.Google
O2 - BHO: (no name) [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Cl� orpheline
O3 - Toolbar: Google Toolbar - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll =>Toolbar.Google
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Cl� orpheline
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe =>Toolbar.Google
O4 - HKUS\S-1-5-21-2499207221-3485120698-3705934866-1000\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe =>Toolbar.Google
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C} =>Toolbar.Google
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F} =>Toolbar.Google
O42 - Logiciel: Skype Toolbars - (.Skype Technologies S.A..) [HKLM][64Bits] -- {981029E0-7FC9-4CF3-AB39-6F133621921A}
[HKLM\Software\Wow6432Node\KoyoteSRTB]
O43 - CFD: 04/03/2013 - 11:49:41 - [23,027] -SH-D C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
O43 - CFD: 02/12/2013 - 09:07:00 - [3,041] ----D C:\Users\CHRISTINE\AppData\Local\CRE
O61 - LFC: 21/01/2014 - 12:18:27 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Google\Toolbar Cache\7.5.4805.320\fr\translate_element.js.content [2385]
O61 - LFC: 21/01/2014 - 12:18:27 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Google\Toolbar Cache\7.5.4805.320\fr\translate_languages.json.content [2033]
O61 - LFC: 21/01/2014 - 12:18:27 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Google\Toolbar Cache\7.5.4805.320\profile_picture_75PAJS75DFDN39N2SS2V.png.content [930]
O69 - SBI: SearchScopes [HKCU] {A527F28A-9963-48A4-B3CD-F29BF8229727} - (eBay) - http://rover.ebay.com =>Toolbar.eBay
[MD5.C67BCF6441E378371F0D6EEFB7EF0861] [SPRF][01/01/2014] (.Conduit - SP Usage Sender.) -- C:\Users\CHRISTINE\AppData\Local\Temp\nsa72A7.exe [167812] =>Toolbar.Conduit
[MD5.C67BCF6441E378371F0D6EEFB7EF0861] [SPRF][01/01/2014] (.Conduit - SP Usage Sender.) -- C:\Users\CHRISTINE\AppData\Local\Temp\nsaF432.exe [167812] =>Toolbar.Conduit
[MD5.C67BCF6441E378371F0D6EEFB7EF0861] [SPRF][01/01/2014] (.Conduit - SP Usage Sender.) -- C:\Users\CHRISTINE\AppData\Local\Temp\nsl6D1B.exe [167812] =>Toolbar.Conduit
[MD5.C67BCF6441E378371F0D6EEFB7EF0861] [SPRF][01/01/2014] (.Conduit - SP Usage Sender.) -- C:\Users\CHRISTINE\AppData\Local\Temp\nsqFBE1.exe [167812] =>Toolbar.Conduit
[MD5.C67BCF6441E378371F0D6EEFB7EF0861] [SPRF][01/01/2014] (.Conduit - SP Usage Sender.) -- C:\Users\CHRISTINE\AppData\Local\Temp\nss195E.exe [167812] =>Toolbar.Conduit
O90 - PUC: "0E9201899CF73FC4BA93F631631229A1" . (.Skype Toolbars.) -- C:\Windows\Installer\{981029E0-7FC9-4CF3-AB39-6F133621921A}\IconUninstallIco
[MD5.B68FD81A0ABDDBA4C120AB440ABF73F4] [WIS][01/09/2010] (.Skype Technologies S.A. - Skype Toolbars.) -- C:\Windows\Installer\117f0.msi [2391040]
[MD5.60FB52C07D89635DDEBDA4B51DF05196] [WIS][02/03/2013] (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:\Windows\Installer\28822.msi [28160] =>Toolbar.Google
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4D91-8333-CF10577473F7}] =>Toolbar.Google^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{18455581-E099-4BA8-BC6B-F34B2F06600C}] =>Toolbar.Google^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2318C2B1-4965-11d4-9B18-009027A5CD4F}] =>Toolbar.Google^
[HKLM\Software\Classes\Installer\Features\0E9201899CF73FC4BA93F631631229A1] =>Toolbar.Agent
[HKLM\Software\Classes\Installer\Products\0E9201899CF73FC4BA93F631631229A1] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\0E9201899CF73FC4BA93F631631229A1] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\Installer\Features\0E9201899CF73FC4BA93F631631229A1] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\Installer\Products\0E9201899CF73FC4BA93F631631229A1] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{981029E0-7FC9-4CF3-AB39-6F133621921A}] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\KoyoteSRTB] =>Toolbar.CoyoteSoft
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{2318C2B1-4965-11d4-9B18-009027A5CD4F} =>Toolbar.Google^
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:swg =>Toolbar.Google^
C:\Users\CHRISTINE\AppData\Local\Temp\nsa72A7.exe =>Toolbar.Conduit^
C:\Users\CHRISTINE\AppData\Local\Temp\nsaF432.exe =>Toolbar.Conduit^
C:\Users\CHRISTINE\AppData\Local\Temp\nsl6D1B.exe =>Toolbar.Conduit^
C:\Users\CHRISTINE\AppData\Local\Temp\nsqFBE1.exe =>Toolbar.Conduit^
C:\Users\CHRISTINE\AppData\Local\Temp\nss195E.exe =>Toolbar.Conduit^
C:\Windows\Installer\28822.msi =>Toolbar.Google^
FirewallRaz
PROXYFix
EmptyTemp
EmptyFlash
EmptyClsid
G2 - GCE: Preference [User Data\Default] [hphehadppenpmajgnkjdcopcfijjegaf] Jump Flip v.1.0.0 (D�sactiv�) =>PUP.JumpFlip
O4 - GS\Program [CHRISTINE]: Centre d'aide Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://support.google.com =>Hijacker.Browsers
O4 - GS\Program [CHRISTINE]: Cr�er des raccourcis vers des applications - Centre d'aide Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://support.google.com =>Hijacker.Browsers
[MD5.00000000000000000000000000000000] [APT] [{0807C59B-0108-4515-B9DB-BF0BB5DE43B7}] (...) -- C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\uninstbb.exe (.not file.) [0] =>PUP.Babylon
[MD5.00000000000000000000000000000000] [APT] [{B8AC1E9B-ADBF-41C3-847A-EAA0C60450F5}] (...) -- C:\Program Files (x86)\sweetpacks bundle uninstaller\uninstaller.exe (.not file.) [0] =>PUP.SweetIM
[HKCU\Software\USyndication] =>Trojan.USyndication
[HKCU\Software\UpToDown] =>PUP.UpToDown
[HKCU\Software\usyndication.com] =>Trojan.USyndication
O43 - CFD: 08/02/2013 - 20:44:15 - [0] ----D C:\Program Files (x86)\SweetPacks =>PUP.SweetIM
O43 - CFD: 20/01/2014 - 12:01:15 - [0] ----D C:\Users\CHRISTINE\AppData\Roaming\DigitalSites =>Hijacker.DSite
O43 - CFD: 20/01/2014 - 19:34:22 - [0] ----D C:\Users\CHRISTINE\AppData\Local\Software
O69 - SBI: SearchScopes [HKCU] {4C93A6DA-9198-4348-9FA3-90E1789E8DBF} - (Search Here) - http://www.mysearchresults.com =>Adware.MyWebSearch
[HKLM\Software\Google\Chrome\Extensions\hphehadppenpmajgnkjdcopcfijjegaf] =>PUP.JumpFlip^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>PUP.Tarma
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5] =>PUP.Tarma
[HKCU\Software\USyndication] =>Trojan.USyndication
[HKCU\Software\usyndication.com] =>Trojan.USyndication
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC] =>Adware.Boxore^
C:\Users\CHRISTINE\AppData\Local\Google\Chrome\User Data\Default\Extensions\hphehadppenpmajgnkjdcopcfijjegaf =>PUP.JumpFlip^
C:\Program Files (x86)\SweetPacks =>PUP.SweetIM^
C:\Users\CHRISTINE\AppData\Roaming\DigitalSites =>Hijacker.DSite^
C:\Users\CHRISTINE\AppData\Local\Software =>Adware.Boxore
[HKCU\Software\UpToDown] =>PUP.UpToDown^
HKLM\Software\Wow6432Node\Sync Services]
O43 - CFD: 18/10/2012 - 18:10:17 - [0] ----D C:\ProgramData\Documentation
O61 - LFC: 24/01/2014 - 12:18:26 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_ak-ns.sascdn.com_0.localstorage [3072]
O61 - LFC: 24/01/2014 - 12:18:26 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_ak-ns.sascdn.com_0.localstorage-journal [3608]
O61 - LFC: 21/01/2014 - 12:18:22 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Diagnostics\2560293460\2014012112.000\NetworkDiagnostics.0.debugreport.xml [1334]
O61 - LFC: 21/01/2014 - 12:18:22 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Diagnostics\2560293460\2014012112.000\ResultReport.xml [39124]
O61 - LFC: 21/01/2014 - 12:18:22 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Diagnostics\2560293460\2014012112.000\WindowsUpdateDiagnostic.0.debugreport.xml [2557]
O61 - LFC: 21/01/2014 - 12:18:22 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Diagnostics\2560293460\2014012112.000\results.xml [284]
O61 - LFC: 21/01/2014 - 12:18:22 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Diagnostics\2560293460\2014012112.000\results.xsl [49097]
O61 - LFC: 21/01/2014 - 12:18:22 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Diagnostics\2560293460\latest.cab [12660]
O61 - LFC: 21/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\is357113909\3696502_stp.CIS [5583612]
O61 - LFC: 21/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\is357113909\3696502_stp.CIS.part [74]
O61 - LFC: 21/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\is357113909\3696504_stp.CIS [9735]
O61 - LFC: 21/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\is357113909\3696504_stp.CIS.part [20]
O61 - LFC: 21/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\is357113909\3696715_stp.CIS [2002467]
O61 - LFC: 21/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\is357113909\3696715_stp.CIS.part [39]
O61 - LFC: 21/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\is357113909\3696791_stp.CIS [218183]
O61 - LFC: 21/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\is357113909\3696791_stp.CIS.part [22]
O61 - LFC: 21/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\is357113909\3696870_stp.CIS [4930487]
O61 - LFC: 21/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\is357113909\3696870_stp.CIS.part [68]
O61 - LFC: 21/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\is357113909\3696934_stp.CIS [19435632]
O61 - LFC: 21/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\is357113909\3696934_stp.CIS.part [209]
O61 - LFC: 21/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\is357113909\3697184_stp.CIS [501103]
O61 - LFC: 21/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\is357113909\3697184_stp.CIS.part [24]
O61 - LFC: 22/01/2014 - 12:18:29 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\avginfo.id [82]
O61 - LFC: 22/01/2014 - 12:18:30 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\dd_SetupUtility.txt [162]
O61 - LFC: 22/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\Microsoft .NET Framework 4.5.1 Setup_20140122_230753120-MSI_netfx_Full_GDR_x64.msi.txt [12235090]
O61 - LFC: 22/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\Microsoft .NET Framework 4.5.1 Setup_20140122_230753120.html [1153356]
O61 - LFC: 22/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\dd_wcf_CA_smci_20140122_221043_706.txt [4684]
O61 - LFC: 22/01/2014 - 12:18:31 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\dd_wcf_CA_smci_20140122_221045_672.txt [2694]
O61 - LFC: 22/01/2014 - 12:18:32 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\RGIE62.tmp-tmp [8910]
O61 - LFC: 23/01/2014 - 12:18:32 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\tmpBB43.url [358]
O61 - LFC: 23/01/2014 - 12:18:32 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\tmpBB44.vbs [218]
[MD5.3DF9C822FFD4245403113A555A27357F] [SPRF][12/01/2014] (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\Quarantine.exe [360073]
[MD5.9C3F4C583CE06463694F4D683E21B35B] [SPRF][20/01/2014] (.Am�n�t�z� Ltd - Installer.) -- C:\Users\CHRISTINE\AppData\Local\Temp\setup__1976.exe [337960]
[MD5.B91FE1536AB4D680DDD77469EA3FD4BF] [SPRF][09/01/2014] (...) -- C:\Users\CHRISTINE\AppData\Local\Temp\vlc-2.1.2-win32.exe [24097311]
SS - | Demand 06/09/2013 288776 | (McComponentHostService) . (.McAfee, Inc..) - C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe
[MD5.00000000000000000000000000000000] [APT] [{A2510CE3-3D91-4516-9B78-1987A88FC0F8}] (...) -- E:\autorun.exe (.not file.) [0]
[HKLM\Software\Wow6432Node\Software]
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll =>Toolbar.Google
O2 - BHO: (no name) [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Cl� orpheline
O3 - Toolbar: Google Toolbar - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll =>Toolbar.Google
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Cl� orpheline
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe =>Toolbar.Google
O4 - HKUS\S-1-5-21-2499207221-3485120698-3705934866-1000\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe =>Toolbar.Google
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C} =>Toolbar.Google
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F} =>Toolbar.Google
O42 - Logiciel: Skype Toolbars - (.Skype Technologies S.A..) [HKLM][64Bits] -- {981029E0-7FC9-4CF3-AB39-6F133621921A}
[HKLM\Software\Wow6432Node\KoyoteSRTB]
O43 - CFD: 04/03/2013 - 11:49:41 - [23,027] -SH-D C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
O43 - CFD: 02/12/2013 - 09:07:00 - [3,041] ----D C:\Users\CHRISTINE\AppData\Local\CRE
O61 - LFC: 21/01/2014 - 12:18:27 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Google\Toolbar Cache\7.5.4805.320\fr\translate_element.js.content [2385]
O61 - LFC: 21/01/2014 - 12:18:27 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Google\Toolbar Cache\7.5.4805.320\fr\translate_languages.json.content [2033]
O61 - LFC: 21/01/2014 - 12:18:27 ---A- . (...) -- C:\Users\CHRISTINE\AppData\Local\Google\Toolbar Cache\7.5.4805.320\profile_picture_75PAJS75DFDN39N2SS2V.png.content [930]
O69 - SBI: SearchScopes [HKCU] {A527F28A-9963-48A4-B3CD-F29BF8229727} - (eBay) - http://rover.ebay.com =>Toolbar.eBay
[MD5.C67BCF6441E378371F0D6EEFB7EF0861] [SPRF][01/01/2014] (.Conduit - SP Usage Sender.) -- C:\Users\CHRISTINE\AppData\Local\Temp\nsa72A7.exe [167812] =>Toolbar.Conduit
[MD5.C67BCF6441E378371F0D6EEFB7EF0861] [SPRF][01/01/2014] (.Conduit - SP Usage Sender.) -- C:\Users\CHRISTINE\AppData\Local\Temp\nsaF432.exe [167812] =>Toolbar.Conduit
[MD5.C67BCF6441E378371F0D6EEFB7EF0861] [SPRF][01/01/2014] (.Conduit - SP Usage Sender.) -- C:\Users\CHRISTINE\AppData\Local\Temp\nsl6D1B.exe [167812] =>Toolbar.Conduit
[MD5.C67BCF6441E378371F0D6EEFB7EF0861] [SPRF][01/01/2014] (.Conduit - SP Usage Sender.) -- C:\Users\CHRISTINE\AppData\Local\Temp\nsqFBE1.exe [167812] =>Toolbar.Conduit
[MD5.C67BCF6441E378371F0D6EEFB7EF0861] [SPRF][01/01/2014] (.Conduit - SP Usage Sender.) -- C:\Users\CHRISTINE\AppData\Local\Temp\nss195E.exe [167812] =>Toolbar.Conduit
O90 - PUC: "0E9201899CF73FC4BA93F631631229A1" . (.Skype Toolbars.) -- C:\Windows\Installer\{981029E0-7FC9-4CF3-AB39-6F133621921A}\IconUninstallIco
[MD5.B68FD81A0ABDDBA4C120AB440ABF73F4] [WIS][01/09/2010] (.Skype Technologies S.A. - Skype Toolbars.) -- C:\Windows\Installer\117f0.msi [2391040]
[MD5.60FB52C07D89635DDEBDA4B51DF05196] [WIS][02/03/2013] (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:\Windows\Installer\28822.msi [28160] =>Toolbar.Google
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4D91-8333-CF10577473F7}] =>Toolbar.Google^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{18455581-E099-4BA8-BC6B-F34B2F06600C}] =>Toolbar.Google^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2318C2B1-4965-11d4-9B18-009027A5CD4F}] =>Toolbar.Google^
[HKLM\Software\Classes\Installer\Features\0E9201899CF73FC4BA93F631631229A1] =>Toolbar.Agent
[HKLM\Software\Classes\Installer\Products\0E9201899CF73FC4BA93F631631229A1] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\0E9201899CF73FC4BA93F631631229A1] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\Installer\Features\0E9201899CF73FC4BA93F631631229A1] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\Installer\Products\0E9201899CF73FC4BA93F631631229A1] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{981029E0-7FC9-4CF3-AB39-6F133621921A}] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\KoyoteSRTB] =>Toolbar.CoyoteSoft
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{2318C2B1-4965-11d4-9B18-009027A5CD4F} =>Toolbar.Google^
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:swg =>Toolbar.Google^
C:\Users\CHRISTINE\AppData\Local\Temp\nsa72A7.exe =>Toolbar.Conduit^
C:\Users\CHRISTINE\AppData\Local\Temp\nsaF432.exe =>Toolbar.Conduit^
C:\Users\CHRISTINE\AppData\Local\Temp\nsl6D1B.exe =>Toolbar.Conduit^
C:\Users\CHRISTINE\AppData\Local\Temp\nsqFBE1.exe =>Toolbar.Conduit^
C:\Users\CHRISTINE\AppData\Local\Temp\nss195E.exe =>Toolbar.Conduit^
C:\Windows\Installer\28822.msi =>Toolbar.Google^
FirewallRaz
PROXYFix
EmptyTemp
EmptyFlash
EmptyClsid